An offensive security toolset for Microsoft 365 focused on Microsoft Copilot, Copilot Studio and Power Platform

A (partial) Python rewriting of PowerSploit's PowerView

A DFIR tool written in Python.

A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX

SharPyShell - tiny and obfuscated ASP.NET webshell for C# web applications

Python wrapper for AutoHotkey with full type support. Harness the automation power of AutoHotkey with the beauty of Python.

Actionable analytics designed to combat threats

smbclient-ng, a fast and user friendly way to interact with SMB shares.

Untitled Goose Tool is a robust and flexible hunt and incident response tool that adds novel authentication and data gathering methods in order to run a full investigation against a customer’s Azur…

AzureGoat : A Damn Vulnerable Azure Infrastructure

🐍 🔍 GuardDog is a CLI tool to Identify malicious PyPI and npm packages

SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.

Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors in the network traffic. Stratosphere Laboratory, AIC, FEL, CV…

Python version of the C# tool for "Shadow Credentials" attacks

a tool to help operate in EDRs' blind spots

Tabular Deep Learning Library for PyTorch

GitHub Actions Pipeline Enumeration and Attack Tool

Extract and Visualize Data from URLs using Unfurl

Use Cloudflare to create HTTP pass-through proxies for unique IP rotation, similar to fireprox

Cobalt Strike random C2 Profile generator

Nebula is a cloud C2 Framework, which at the moment offers reconnaissance, enumeration, exploitation, post exploitation on AWS, but still working to allow testing other Cloud Providers and DevOps C…

linuxprivchecker.py -- a Linux Privilege Escalation Check Script

A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-purple-teaming-183b7df7a2f4

Advanced Active Directory network topology analyzer with SMB validation, multiple authentication methods (password/NTLM/Kerberos), and comprehensive network discovery. Export results as BloodHound‑…

Automated Attack Simulation in the Cloud, complete with detection use cases.

"Bob the Smuggler": A tool that leverages HTML Smuggling Attack and allows you to create HTML files with embedded 7z/zip archives. The tool would compress your binary (EXE/DLL) into 7z/zip file for…

Kraken, a modular multi-language webshell coded by @secu_x11